mastodon

Commit Graph

Author	SHA1	Message	Date
Sai	fbe173fe35	Bump ruby to 3.2.2 due to ReDoS vulnerabilities (#24320 )	2023-03-31 18:28:40 +02:00
Aaron Patterson	edc6f486bf	Upgrade to Ruby 3.2 (#22928 ) Co-authored-by: Matthew Ford <matt@bitzesty.com>	2023-02-15 08:30:27 +01:00
Nick Schonning	17e3cdb81b	Update Ruby to 3.0.5 (#23544 )	2023-02-13 14:39:24 +01:00
zunda	9a500b21b5	Bump Ruby version from 3.0.3 to 3.0.4 (#18028 ) https://www.ruby-lang.org/en/news/2022/04/12/ruby-3-0-4-released/	2022-08-15 04:39:58 +02:00
zunda	56abe9b4d7	Upgrade Ruby to 3.0.3 (#17038 ) https://www.ruby-lang.org/en/news/2021/11/24/ruby-3-0-3-released/	2021-11-24 20:29:05 +01:00
Shlee	0e747afd34	Ruby 3.0.2 Upgrade (#16982 ) * Update .ruby-version * Update Gemfile * Update Gemfile.lock * Update Dockerfile * Update check-i18n.yml * Update config.yml * Update config.yml	2021-11-18 21:59:57 +01:00
Daigo 3 Dango	b9e9bb17d9	Use ruby-2.7.4 (#16481 ) Stop using older version of resolv gem as the bug has been fixed. https://bugs.ruby-lang.org/issues/17781	2021-07-10 01:29:27 +02:00
Claire	aa38f15cf1	Revert default Ruby version to 2.7.2 (#16154 ) Ruby 2.7.3 introduced a new bug with Resolv::DNS, which we heavily use within Mastodon: https://bugs.ruby-lang.org/issues/17781 Ruby 2.7.3 also included security fixes for two CVEs, but those do not seem to apply to Mastodon: https://github.com/tootsuite/mastodon/pull/16004#issuecomment-815125025	2021-05-04 23:06:19 +02:00
Daigo 3 Dango	acd8edcdee	Upgrade Ruby to 2.7.3 (#16004 ) * Upgrade Ruby to 2.7.3 https://www.ruby-lang.org/en/news/2021/04/05/ruby-2-7-3-released/ includes security fixes to - CVE-2021-28965: XML round-trip vulnerability in REXML - CVE-2021-28966: Path traversal in Tempfile on Windows * Update rexml to 3.2.5 https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/	2021-04-09 02:31:36 +02:00
Daigo 3 Dango	75585748c9	Use Ruby 2.7.2 (#15150 ) thwait and e2mmap are no longer needed in Gemfile. Gems properly require those.	2020-11-19 17:46:46 +01:00
Shlee	d0faa56fcf	Update .ruby-version (#13395 )	2020-04-05 13:58:43 +02:00
Daigo 3 Dango	216594fe26	Use Ruby 2.6.5 (#12049 )	2019-10-02 04:54:32 +02:00
Daigo 3 Dango	fe3de62124	Use Ruby-2.6.4 (#11942 )	2019-09-25 02:07:11 +02:00
Daigo 3 Dango	85c9cdaed0	Upgrade Ruby to 2.6.1 (#9956 )	2019-02-20 11:57:08 +01:00
Eugen Rochko	ebe56fbca1	Upgrade default Ruby version to 2.6.0 (#9688 )	2019-01-01 16:40:17 +01:00
Daigo 3 Dango	4d611170f2	Use Ruby ==2.5.2== 2.5.3 (#9003 ) * Use Ruby 2.5.2 * Specify 2.5.2p104 as RUBY VERSION Heorku refers to RUBY VERSION in Gemfile.lock * Use ruby-2.5.3	2018-10-18 22:32:47 +02:00
Yamagishi Kazutoshi	1fbeac0c82	Update Ruby to version 2.4.4 (#6964 ) https://www.ruby-lang.org/en/news/2018/03/28/ruby-2-4-4-released/ > This release includes some bug fixes and some security fixes. > > - CVE-2017-17742: HTTP response splitting in WEBrick > - CVE-2018-6914: Unintentional file and directory creation with directory traversal in tempfile and tmpdir > - CVE-2018-8777: DoS by large request in WEBrick > - CVE-2018-8778: Buffer under-read in String#unpack > - CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in UNIXServer and UNIXSocket > - CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir > - Multiple vulnerabilities in RubyGems	2018-04-01 23:43:08 +02:00
Yamagishi Kazutoshi	2df7c3a008	Add support Ruby v2.5.0 (#6097 )	2018-01-19 20:53:30 +01:00
Daigo 3 Dango	0de28e70e8	Bump ruby version to 2.4.2 (#4958 ) * Bump ruby version to 2.4.2 https://www.ruby-lang.org/en/news/2017/09/14/ruby-2-4-2-released/ Gemfile.lock is also updated. TODO - [ ] Update Dockerfile with Alpine release of ruby-2.4.2 * Revert jwt version It seems that jwt 2.0.0 fails in some environment. ref. https://github.com/zaru/webpush/issues/42 * Bump Ruby version on docker image	2017-09-18 04:55:57 +02:00
Matt Jankowski	b4950a59bb	Version bumps for ruby and misc gems (#1159 ) * Update rspec-rails to version 3.5.2 * Update addressable to version 2.5.1 * Update autoprefixer-rails to version 6.7.7.1 * Update bullet to version 5.5.1 * Update domain_name to version 0.5.20170404 * Update letter_opener_web to version 1.3.1 * Upate redis-rails to version 5.0.2 * Update active_record_query_trace to version 1.5.4 * Update capistrano-rails to version 1.2.3 * Update dotenv-rails to version 2.2.0 * Update pg to version 0.20.0 * Update tilt to version 2.0.7 * Update warden to version 1.2.7 * Update tins to version 1.13.2 * Update terminal-table to version 1.7.3 * Update oj to version 2.18.5 * Update simplecov to version 0.14.1 * Update uglifier to version 3.1.13 * Update hashdiff to version 0.3.2 * Update webmock to version 2.3.2 * Update devise to version 4.2.1 * Use ruby version 2.4.1 * Update sass to version 3.4.23 * Update puma to version 3.8.2 * Update will_paginate to version 3.1.5 * Update font-awesome-rails to version 4.7.0.1 * Update fuubar to version 2.2.0 * Update pry-rails to version 0.3.6 * Update simple-navigation to version 4.0.5 * Update rubocop to version 0.48.1 * Update doorkeeper to version 4.2.5 * Update faker to version 1.7.3 * Update aws-sdk to version 2.9.5 * Update fabrication to version 2.16.1 * Update hamlit-rails to version 0.2.0 * Update http to version 2.2.1 * Update httplog to version 0.99.2 * Update sidekiq to version 4.2.10 * Update rspec-sidekiq to version 3.0.0 * Update pghero to version 1.6.4 * Update rack-cors to version 0.4.1 * Update i18n-tasks to version 0.9.13 * Update ruby-oembed to version 0.12.0 * Update jquery-rails to version 4.3.1 * Update simple_form to version 3.4.0 * Update react-rails to version 1.11.0 * Update aws-sdk to version 2.9.6 * Update sidekiq-unique-jobs to version 5.0.0 * Update uglifier to version 3.2.0	2017-04-10 22:47:41 +02:00
Eugen Rochko	a6cd0711b0	Upgrade ruby to 2.3.1	2016-11-12 01:55:33 +01:00
Eugen Rochko	9c4856bdb1	Initial commit	2016-02-20 22:53:20 +01:00

22 Commits (that-one-spammer)